From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.org!not-for-mail From: Ami Fischman Newsgroups: gmane.emacs.bugs Subject: bug#12745: crash in bidi_pop_it during (idle) redisplay Date: Sun, 28 Oct 2012 12:00:49 -0700 Message-ID: References: <508CA6FC.4070203@cs.ucla.edu> <508CE3B0.2030809@cs.ucla.edu> <83lieq8q91.fsf@gnu.org> NNTP-Posting-Host: plane.gmane.org Mime-Version: 1.0 Content-Type: multipart/alternative; boundary=20cf3071cf9ad7fd8804cd232b0b X-Trace: ger.gmane.org 1351451208 17878 80.91.229.3 (28 Oct 2012 19:06:48 GMT) X-Complaints-To: usenet@ger.gmane.org NNTP-Posting-Date: Sun, 28 Oct 2012 19:06:48 +0000 (UTC) Cc: 12745@debbugs.gnu.org To: Eli Zaretskii Original-X-From: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Sun Oct 28 20:06:56 2012 Return-path: Envelope-to: geb-bug-gnu-emacs@m.gmane.org Original-Received: from lists.gnu.org ([208.118.235.17]) by plane.gmane.org with esmtp (Exim 4.69) (envelope-from ) id 1TSYCE-0007V6-Eh for geb-bug-gnu-emacs@m.gmane.org; Sun, 28 Oct 2012 20:06:54 +0100 Original-Received: from localhost ([::1]:54591 helo=lists.gnu.org) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1TSYC5-0002cJ-BI for geb-bug-gnu-emacs@m.gmane.org; Sun, 28 Oct 2012 15:06:45 -0400 Original-Received: from eggs.gnu.org ([208.118.235.92]:35340) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1TSYC2-0002cE-Ha for bug-gnu-emacs@gnu.org; Sun, 28 Oct 2012 15:06:43 -0400 Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1TSYC1-0000ur-8j for bug-gnu-emacs@gnu.org; Sun, 28 Oct 2012 15:06:42 -0400 Original-Received: from debbugs.gnu.org ([140.186.70.43]:54896) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1TSYC1-0000un-5b for bug-gnu-emacs@gnu.org; Sun, 28 Oct 2012 15:06:41 -0400 Original-Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.72) (envelope-from ) id 1TSYEI-00068L-Dw for bug-gnu-emacs@gnu.org; Sun, 28 Oct 2012 15:09:02 -0400 X-Loop: help-debbugs@gnu.org Resent-From: Ami Fischman Original-Sender: debbugs-submit-bounces@debbugs.gnu.org Resent-CC: bug-gnu-emacs@gnu.org Resent-Date: Sun, 28 Oct 2012 19:09:02 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 12745 X-GNU-PR-Package: emacs X-GNU-PR-Keywords: Original-Received: via spool by 12745-submit@debbugs.gnu.org id=B12745.135145134123570 (code B ref 12745); Sun, 28 Oct 2012 19:09:02 +0000 Original-Received: (at 12745) by debbugs.gnu.org; 28 Oct 2012 19:09:01 +0000 Original-Received: from localhost ([127.0.0.1]:36914 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.72) (envelope-from ) id 1TSYEG-000685-2E for submit@debbugs.gnu.org; Sun, 28 Oct 2012 15:09:01 -0400 Original-Received: from mail-vc0-f172.google.com ([209.85.220.172]:48708) by debbugs.gnu.org with esmtp (Exim 4.72) (envelope-from ) id 1TSY8e-00060T-3I for 12745@debbugs.gnu.org; Sun, 28 Oct 2012 15:03:14 -0400 Original-Received: by mail-vc0-f172.google.com with SMTP id fl11so5533654vcb.3 for <12745@debbugs.gnu.org>; Sun, 28 Oct 2012 12:00:50 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:x-gm-message-state; bh=zRxy/DDhuVeWVFmzgZZSkO4ovaHZcQOFcBjn5oM6uMU=; b=CL8l6heeSOyyxB/5fN6M6voQnX+BU0GpqkNyrEXibVfTSogqEiS9e3hsHD9S57E9Kx qYlYdN7jrWYB9NzqFSwmOMkN23JBsnXwvV3SiMtayBS47w/bnKN9KDutcKXG5jsplX2G VhFhCZN2eZpUcnE+iklwId+a+Sg8t/7vS1832WhIAtRh5P8X0H5QdG2qaJ9ERSUakMlG P7fD2RnlVP95u5ZHvGU/sRGco1bBPgkTchtapz4OMOSGirUPPeM5v5gOEnwasjNBhPOA bsH07htMxgWTNiHXGffj7el3DtDgPGsVz1M2vwk7pgctPlHRECobPXtKV7UFU2koZX2H s74w== Original-Received: by 10.52.100.5 with SMTP id eu5mr36272691vdb.34.1351450849967; Sun, 28 Oct 2012 12:00:49 -0700 (PDT) Original-Received: by 10.58.205.212 with HTTP; Sun, 28 Oct 2012 12:00:49 -0700 (PDT) In-Reply-To: <83lieq8q91.fsf@gnu.org> X-Gm-Message-State: ALoCoQlbqsaHFmU4/Cil3yBNbbGG6pqa5TFVdkFt5qL4004bZ0JFVcfnbe4Dngk4Y1lgVLFUFPgj X-Mailman-Approved-At: Sun, 28 Oct 2012 15:08:59 -0400 X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.13 Precedence: list X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.6 (newer, 2) X-Received-From: 140.186.70.43 X-BeenThere: bug-gnu-emacs@gnu.org List-Id: "Bug reports for GNU Emacs, the Swiss army knife of text editors" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Original-Sender: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Xref: news.gmane.org gmane.emacs.bugs:66150 Archived-At: --20cf3071cf9ad7fd8804cd232b0b Content-Type: text/plain; charset=ISO-8859-1 > > Thanks. But I'd like to see the report from your normal session, > invoked just as you invoke those that crash. > Of course now I don't have such a session b/c I'm running w/ git HEAD :) So this seems to say that there's at least one overlay string at > buffer position 1295. Is that reasonable? What was the current > buffer when this crashed? You can find that out by typing this at GDB > prompt: > (gdb) pp current_buffer->name_ > (gdb) pp current_buffer->name_ Cannot access memory at address 0x8b6a00 > (gdb) p current_buffer->text->beg[1200]@100 > (gdb) p current_buffer->text->beg[1200]@100 $1 = "num to avoid later static_cast in\n// PluginInstance.\nenum MediaKeyError {\n kUnknownError = 1,\n kCl" which tells me the current buffer was an edited version of http://src.chromium.org/viewvc/chrome/trunk/src/webkit/media/crypto/ppapi/cdm_wrapper.cc?view=markup(which I can't share in its entirety). FWIW, there's nothing non-7-bit-ascii in this file, and nothing that should have triggered any bidi-specific logic. It's just a cc-mode C++ file. Possibly interestingly, if I print p current_buffer->text->beg[0]@100000 to emit the entire buffer, I see this text starting at char 1675: http://go", '\000' , "/b Those 2000 NULs are definitely out of place (the URL should have started with http://go/b) but I don't know if that's a debugging artifact, or what. If I load the modified buffer into my HEAD session (overlays-at 1295) returns nil. Also, what do the following commands produce? > (gdb) frame 6 > (gdb) pgrowx it->glyph_row > >> > (gdb) frame 6 > #6 0x0000000000447aa1 in pop_it (it=0x7fff2251f1e0) at xdisp.c:5769 > 5769 bidi_pop_it (&it->bidi_it); > (gdb) pgrowx it->glyph_row You can't do that without a process to debug. Cheers, -a --20cf3071cf9ad7fd8804cd232b0b Content-Type: text/html; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable
Thanks. =A0But I&= #39;d like to see the report from your normal session,
invoked just as you invoke those that crash.

Of course now I don't have such a session b/c I'm running w/ = git HEAD :)

So this seems to say that there's at least one overlay string at
buffer position 1295. =A0Is that reasonable? =A0What was the current
buffer when this crashed? =A0You can find that out by typing this at GDB prompt:
=A0 (gdb) pp current_buffer->name_
=A0
(g= db) pp current_buffer->name_
Cannot access memory at address 0= x8b6a00
=A0
=A0 (gdb) p current_buffer->text->beg[1200]@100
=
=A0(gdb) p current_buffer->text->beg[1200]@100
$1 =3D "num to avoid later static_cast in\n// PluginInstance.\nenum= MediaKeyError {\n =A0kUnknownError =3D 1,\n =A0kCl"
which tells me the current buffer was an edited version of http://src.chromium.org/viewvc/chrome/trunk/sr= c/webkit/media/crypto/ppapi/cdm_wrapper.cc?view=3Dmarkup (which I can&#= 39;t share in its entirety). =A0FWIW, there's nothing non-7-bit-ascii i= n this file, and nothing that should have triggered any bidi-specific logic= . =A0It's just a cc-mode C++ file.

Possibly interestingly, if I print p current_buffer->= ;text->beg[0]@100000 to emit the entire buffer, I see this text starting= at char 1675:
http://go", '\0= 00' <repeats 2000 times>, "/b
Those 2000 NULs are definitely out of place (the URL should have start= ed with http://go/b) but I don't know if th= at's a debugging artifact, or what.

If I load = the modified buffer into my HEAD session (overlays-at 1295) returns nil.

Also, what do the following commands produce?
=A0 (gdb) frame 6
=A0 (gdb) pgrowx it->glyph_row
=A0
(gdb) frame 6
#= 6 =A00x0000000000447aa1 in pop_it (it=3D0x7fff2251f1e0) at xdisp.c:5769
=
5769 =A0 =A0 =A0 =A0 =A0bidi_pop_it (&it->bidi_it);
=
(gdb) pgrowx it->glyph_rowYou can't do that without a process to debug.

Cheers,
-a
--20cf3071cf9ad7fd8804cd232b0b--